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SYSTEM AND METHOD FOR THE CONCEALMENT OF 
DEVICE INPUT PARAMETERS 

5 

CROS S - REFERENCE TO RELATED APPLICATION 

The present application claims priority to U.S. Provisional 
Patent Application No. 60/216,588, filed July 7, 2000, which is 
hereby incorporated by reference as if set forth in full herein. 

10 

FIELD OF THE INVENTION 

The present invention relates to the transmission of 
data in a secure manner and, more particularly, to systems and 
methods that conceal parameters that are transmitted between two 
15 devices. 

BACKGROUND OF THE INVENTION 

The widespread transmission of digital data across 
computer networks and between transmission and reception devices 

20 has created a need for increasingly efficient systems for the 
encryption and decryption of sensitive data. There exist known 
systems that employ encryption algorithms which encrypt digital 
data into an unintelligible form for transmission over non- secure 
communication channels. One such encryption algorithm is known 

25 as the Data Encryption Standard (DES) . The DES method of 
encryption utilizes a data encryption key which consists of a 64- 
bit binary word. The key is used in a mathematical algorithm 
which coverts digital data into an apparently random sequence of 
bits. The encryption key must be known to the receiver of the 

3 0 encrypted data, because the key is required to properly decrypt 
the encrypted data. 

In the conventional DES system, since the encryption 
and decryption algorithms are publicly known, the security of the 
key is crucial if the data is to be protected. Thus, others have 

35 proposed the periodic generation and distribution of random DES 
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keys. The DES users typically change keys at frequent intervals, 
such as on a daily basis. 

5 Such a DES system requires that personnel on both the 

transmission and reception end know which key is being used on 
a particular day. Such an approach is disadvantageous, because 
the more people who know the key being used, the more likely that 
unauthorized people will discover the key as well, and therefore 

10 be able to intercept and interpret data that is intended to be 
maintained in secrecy. 

Thus, the need exists for an improved system and method 
for concealing parameters that are being loaded into a device. 
The present invention addresses this need. 

15 

SUMMARY OF THE INVENTION 

In one aspect of the invention, a method is provided 
for concealing a parameter transferred between a first and second 
device. The method comprises generating by the first device a 

20 control signal and a parameter signal; transmitting by the first 
device to the second device the control signal and the parameter 
signal; receiving by the second device from the first device the 
control signal and the parameter signal; and generating by the 
second device a destination parameter signal using the control 

25 signal and the parameter signal. 

In another aspect of the invention, the first device 
generates a first key signal using the control signal and 
generates the parameter signal by transforming a source parameter 
signal using the first key signal. The second device, upon 

3 0 receiving the parameter signal, generates a second key signal 
using the control signal and generates the destination parameter 
signal by transforming the parameter signal using the second key 
signal . 

The another aspect of the invention, a portion of the 
3 5 control signal is transformed with the source parameter signal 
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to generate the parameter signal. The second device, upon 
receiving the parameter signal, generates from the parameter 

5 signal using the second key signal a transformed control signal 
portion and compares the transformed control signal portion to 
a portion of the received control signal. 

In another aspect of the invention, the parameter 
signal includes a plurality of transformed data signals and a 

10 block of transformed memory address signals corresponding to the 
transformed data signals. 

In another aspect of the invention, a second device is 
authenticated by a first device. The first device generates a 
message signal and transmits the message signal to the second 

15 device. The second device transforms the message signal into a 
first transformed message signal using a configuration signal. 
The second device transmits to the first device the first 
transformed message signal. The first device transforms the 
message signal into a second transformed message signal using the 

2 0 configuration signal and compares the first and second 

transformed message signals to determine the authenticity of the 
second device. 

In another aspect of the invention, a device is provided for 
transforming a plurality of parameter fragment signals 
25 transmitted from a first device into a destination parameter 
signal. The device includes logic blocks for receiving from the 
first device the plurality of parameter fragment signals and 
generating a destination parameter signal from the plurality of 
parameter fragment signals. 

30 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG.l is a block diagram of a system according to an 
embodiment of the present invention; 

35 
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FIG. 2 is a process flow diagram of an embodiment of 
a parameter concealment process according to the present 
invention; 

FIG. 3 is a process flow diagram of an embodiment of 
a parameter concealment process according to the present 
invention 

FIG. 4 is a block diagram of an embodiment of the 
present invention used for memory addressing; 

FIG. 5 is a block diagram of an embodiment of the 
present invention illustrating the use of a key fragmenting 
embodiment ; and 

FIG. 6 is a block diagram of an embodiment of the 
present invention used for device authentication; and 

FIG. 7 is a block diagram of an embodiment of the 
present invention depicting communication between two devices. 

DETAILED DESCRIPTION OF THE INVENTION 

FIG. 1 is a block diagram of a parameter concealment 
embodiment of the present invention. A first device 10 transmits 
a parameter signal 14 and a control signal 16 to a second device. 
The second device includes a parameter concealment logic block 
used to conceal device input parameters passed between the two 
devices. The parameter concealment logic block receives the 
parameter signal and the control signal and performs a 
transformation on the parameter signal according to the control 
signal in order to generate a destination parameter signal 20. 
The destination parameter signal is transmitted to destination 
registers 22 within the device. In one embodiment of a parameter 
concealment logic block according to the present invention, the 
destination parameter signal in the destination registers is 
transmitted as a feedback signal 24 to be reused in the parameter 
concealment logic block. 
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In one embodiment of a parameter concealment logic 
block according to the present invention, the parameter 

5 concealment logic block includes a control logic block 28 
operably coupled to an interface operation logic block 26. The 
control logic block receives the control signal and directs the 
operations of the interface operation logic block to generate the 
destination parameter signal from the parameter signal . 

10 FIG. 7 is a block diagram of an exemplary embodiment 

of a device according to the present invention. A first device 
300 includes control logic 302 operably coupled to a hardware- 
based transformation module 306 and a first key table module 304 
including indexed transformation keys. A second device 314 

15 includes a parameter concealment logic block including a control 
logic block 317 operably coupled to an interface operation logic 
block 319. The control logic block includes second control logic 
316 and a second key table module 318. The interface operation 
logic block includes a hardware -based transformation inversion 

20 module 320. 

In operation, the first control logic uses control 
signals to generate first key selection signals 308 transmitted 
to the key table module. In response to the key selection 
signals, the key table module generates a key signal 310 used by 

2 5 the transformation module to transform source parameter signals 

307 thereby generating parameter signals 312 to be transmitted 
to the second device. The parameter signals and control signals 
are transmitted to the second device. 

The second device receives the parameter signals and 

3 0 the control signals. The second control logic extracts the 

control signals and uses them to generate a second key selection 
signal 322 transmitted to the second key table module. In 
response to the second key selection signal, the key table module 
generates a second key signal 324 transmitted to the inverse 
35 transformation module. The inverse transformation module uses 
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the second key signal to inversely transform the parameter 
signals and generate a destination parameter signal 326 for use 

5 by the second device. 

The process of transformation of the source parameter 
signal may be accomplished by a variety of methods. In one 
embodiment of a parameter concealment apparatus according to the 
present invention. The source parameter signal is transformed 

10 by being encrypted to generate the parameter signal transmitted 
from the first device to the second device. The inverse 
transformation applied to the parameter signal by the second 
device is then a decryption process. In another embodiment of 
a parameter concealment apparatus according to the present 

15 invention, the parameter signal is transformed by using hashing 
functions. In another embodiment of a parameter concealment 
apparatus according to the present invention, the parameter 
signal is transformed by partitioning the source parameter into 
parameter fragments and transmitting the parameter fragments. 

2 0 Any transformation in conjunction with an appropriate inverse 

transformation may be used to conceal the source parameter 
signal . 

In one embodiment of parameter concealment apparatus 
according to the present invention, the control signals and the 
25 parameter signals are transmitted through the same communications 
channel . 

In one embodiment of a parameter concealment apparatus 
according to the present invention, the control signals and the 
parameter signals are transmitted through different 

3 0 communications channels. 

FIG. 2 is a process flow diagram of an embodiment of 
a parameter concealment process employed by the device in FIG. 
7. Operation begins at step 30, with a first key signal being 
selected by a first device 300 (FIG. 7). At step 32, a source 
35 parameter signal to be concealed is concatenated with a control 
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signal including an index value corresponding to the first key 
signal . The concatenated signal thus contains a source parameter 
5 signal portion and a control signal portion before the 
concatenated signal is transformed. At step 34, the concatenated 
signal is transformed using the first key to create a parameter 
signal . 

At step 36, the first device transmits the transformed 
10 parameter signal, along with corresponding control signal. In 
one illustrative embodiment, the control signal includes an index 
value of the first key, as well as a final destination of a 
destination parameter. The final destination may be signaled 
using a control register value or other suitable value. 
15 At step 38, the second device 314 (FIG. 7) receives the 

parameter signal and the control signal. The control signal is 
routed to control logic block 317 (FIG. 7) , where at step 40 the 
control signal is processed to determine both a second key used 
to inversely transform the incoming transformed data, as well as 

2 0 the final destination of the inversely transformed data. The 

control logic block uses the index value to find an appropriate 
match in an association table or the like. The association table 
links the index values with corresponding keys. 

Once the second key is identified, operation proceeds 

2 5 to step 42, and the transformed parameter signal is inversely 

transformed by interface operation logic block 319 (FIG. 7) to 
generate a destination parameter signal. The inversely 
transformed index value signal is compared with the index value 
signal received by control logic block, At step 44, the second 

3 0 device determines whether the two index value signals match. If 

not, the destination parameter signal is discarded at step 46, 
and operation terminates at step 50. On the other hand, if the 
two index value signals do in fact match, then operation proceeds 
to step 48, and the destination parameter is loaded to a 
35 particular destination register as dictated by the control logic 
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block and the control signal received by the control logic block. 
Operation then terminates at step 50. 

5 In one illustrative embodiment of the present 

invention, a method is provided for obscuring a parameter that 
must be passed from software to a hardware device (e.g., to a 
hardware decryption device) . For example, when a decryption key 
is to be passed from software to hardware, it is desirable to 

10 prevent a monitoring software operation from being able to easily 
intercept the secret parameter. 

In connection with this embodiment, software at the 
transmission end executes a plurality of interface operations to 
the hardware device (the receiving end) , with the interface 

15 operations being executed in disjoint program modules so as to 
obfuscate the key building algorithm through the generation of 
multiple parameter fragment signals. Additionally, the interface 
operations may be intermixed with interface operations for other 
parameter destinations to further obscure the procedure. 

2 0 Referring to FIG. 3, one example of the illustrative 

embodiment is described. For example, in the case of a key 
building algorithm, the key may be built in a second device by: 

Key= ({(Al) XOR (A2) } <<3)+ A3 
Where Al, A2 , and A3 are parameter fragment signals transmitted 

25 from a first device and used by the second device to generate a 
key. 

Thus a first step, shown as step 60 in FIG. 3, is to 
load a mult i -bit data word Al (hereinafter Mata word") into the 
second device. An interface operation logic block 18 stores Al 

30 to a destination registers. At step 62, a data word A2 is loaded 
into the second device, along with an XOR command. Interface 
operation logic block retrieves Al and performs the XOR function 
at step 64, and stores the result in another destination 
register. Next, at step 66, a shift command is loaded into the 

35 second device, which performs a shift function on the stored data 
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word. At step 68, A3 is loaded into the second device, along 
with a command to add A3 to the shifted data word. At step 70, 
5 the second device sums A3 and the shifted data word to complete 
the secret key. 

In this manner, the key is never seen outside of the 
device and is therefore protected at all times. 

It will be apparent to those having skill in the art 
10 that the above -described example is only one example of the 
method according to the invention. Virtually any secret 
parameter can be built by practicing the above-described method. 

It will be understood that the various loads may be 
performed in a sequential fashion, or alternatively can be 
15 intermixed with other interface operations to further obfuscate 
the operation and make it even harder for an unauthorized person 
to monitor the transmission line, intercept the disjoint 
functions and build the key. 

Referring to FIG. 4, there is shown one example of the 

2 0 above-described method for obfuscating a secret parameter. An 

external addressable memory 8 0 is provided. When data is loaded 
into external memory 80, it is loaded in a manner that scrambles 
the original data, as well as scrambling the original address 
locations of that data. The scrambling of the data and the 
25 address locations is dictated by a known routine. Thus, when an 
external processor reads the scrambled data, it is read in a 
sequential manner, from the top of the memory down. Thus, when 
the data is loaded into the receiving device, it is loaded in a 
sequential manner according to how it is ordered in the external 

3 0 memory. In addition to data signals, memory load control signals 

are loaded into the device, and are received by a control logic 
block 82. A control logic block 82 is connected to a memory 
unscramble operation logic block 84, controlled by a control 
logic block 82 to perform the appropriate unscrambling of the 
35 incoming data signals. Once the data signals are unscrambled and 
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address locations are determined, the data signals are stored in 
an internal memory 86. The unscrambled data signals can then be 
used directly from internal memory (such that the unscrambled 
memory is never transmitted outside of the device) , or may be 
transferred across a secure interface. Thus, even if someone is 
able to monitor the interface between the external memory and the 
device, they still cannot assemble the data signals in the proper 
order . 

Referring now to FIG. 5, there is shown one 
illustrative embodiment of the invention, which allows a user to 
locally transform keys in a real-time manner before loading them 
into a hardware device (the receiving device) . According to this 
embodiment, an intermediate key ( u Keyl n ) is used to generate a 
second key ( u Key2 ,! ) that is used by the receiving device to 
inversely transform an incoming, transformed interface parameter. 
Since the algorithm used to generate Key2 from Keyl is maintained 
within the receiving device, even if Key2 is compromised, it will 
not compromise the source secret key Keyl. Keyl is maintained 
within the device and does not need to be transmitted between the 
transmitting and receiving devices. 

According to the embodiment of FIG. 5, a control signal 
including a key index signal 112 and a key variable signal 114 
are transmitted from a first device (not shown) and received by 
a second device 116. The second device uses the key index signal 
to access a key table 100 and generate a corresponding first key 
signal 118 as well as an intermediate key signal 120. 

In one embodiment , the key index signal , the 
intermediate key signal, and the key variable signal encode 
multi-bit data values. The multi-bit data values allow for 
selection between a plurality of different keys stored at the 
second device. The intermediate key signal mult i -bit value may 
be a fixed data word or may be a variable depending on the key 
index signal received by the second device. 
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In one embodiment, a key interface stage 102 receives 
the key variable signal, the key index signal, and the 
intermediate key signal, and integrates those values together to 
generate a data word signal 103. In addition, in one 
illustrative embodiment the key variable and key signals are 
summed together and also integrated into the resultant data word 
signal . 

The data word signal is introduced, along with the 
first key signal, to a hash function module 104, which is a 
mathematical function which takes the two signals and converts 
them into a second key signal encoding a fixed- length binary 
sequence. Such a hash function may be a one-way hash function. 
The second key signal is then used to inversely transform the 
incoming parameter signal 115, which is initially stored in an 
input register 106, then inversely transformed using the second 
key signal at stage 108 to generate a destination parameter 
signal 109 which is stored in a destination register 110. It 
will be understood that the second key signal will remain the key 
signal that is used to conceal the interface parameter at the 
transmitting end until another second key signal is generated. 

In this manner, even if the security of Key2 is 
compromised, one still cannot determine the algorithm that 
created Key2 , nor can one determine the secret key Keyl . 
Moreover, by simply changing the key index value, a different 
Keyl is selected, which will result in a different Key2 being 
generated. Further, even if one can intercept the key index 
value and also determine Key2 , by simply changing the key 
variable value, the same key index value can still be used, as 
a different Key2 will be generated. Thus, if an unauthorized 
person is able to acquire Key2 , the system is able to quickly 
generate a different Key2 , even using the same Keyl. 

While in one illustrative embodiment the key interface 
stage 102 receives as inputs the key variable signal, the key 
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secret signal, and the first key signal, it will be apparent that 
the key interface stage may receive all or some of those signals. 
In addition, the manner in which the inputs are integrated may 
take any suitable form. Moreover, the key interface stage 102 
may integrate one or more of those inputs with one or more fixed 
data words. Thus, the embodiment shown in FIG. 5 is meant to 
serve as one example of such a system. 

The system and method of FIG. 5 allow for different 
receiving devices to use different Key2 values. Thus, even if 
an unauthorized person is able to determine a Key2 value used by 
one box, that Key2 value will not necessarily work to inversely 
transform incoming data in other receiving devices. 

FIG. 6 illustrates an exemplary embodiment of the 
invention used for device authentication. Multiple destination 
registers, including registers for storing derivative values used 
for feedback as a Key2 value, are included within a device. A 
derivative key used as a Key2 value is used to generate a result 
and send the result to a destination register. The result is 
subsequently read from the device and transmitted to another 
device. This enables the invention to be used as a means of 
device authentication. 

More specifically, a first device 90 generates a random 
message signal 94 transmitted to a second device 92. A 
predefined configuration signal 96 is used by the second device 
to generate 98 a first transformed message signal, storing the 
first transformed message signal in a first destination register 
100. The first transformed message signal stored in the 
destination register is transmitted 102 to the first device and 
stored in a compare register 104. 

The first device uses the predefined configuration 
signal 96 and the generated random message signal 94 to create 
a second transformed message signal stored in a second 
destination register 106 in the first device. The first device 



-12- 



4518 8/FLC/B600-BP1441 



compares the first and second transformed message signals to 
authenticate the identity of the second device. If the first and 
second transformed message signals are the same, then the second 
device has proven itself by using the same transformation 
function as the first device. If the first and second 
transformed message signals are different, then the second device 
failed to use the same function and the second device's identity 
is suspect. 

From the foregoing, it will be apparent to those 
skilled in the art that the system and method of the present 
invention provide for concealing the loading of parameters into 
a device. 

While the above description contains many specific 
features of the invention, these should not be construed as 
limitations on the scope of the invention, but rather as 
exemplary embodiments thereof. Many other variations are 
possible. Accordingly, the scope of the invention should be 
determined not by the embodiments illustrated, but by the 
appended claims and their legal equivalents. 
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